HomePentest-Tools.com Logo

ASP.NET Core SDK System.IO.Pipelines Denial of Service Vulnerability Sep18 (Windows) CVE-2018-8409

Severity
CVSSv3 Score
7.5
Vulnerability description

ASP.NET Core SDK is prone to a denial of service vulnerability.

Risk description

The flaw exists due to an error on how System.IO.Pipelines handles requests. Successful exploitation will allow an attacker to cause a denial of service against an application that is leveraging System.IO.Pipelines.

Recommendation

Upgrade to ASP.NET Core 2.1.402 or later. Please see the references for more information.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Sep 13, 2018
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available